This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Big Sur 11.0.1. An application may be able to gain elevated privileges.
http://seclists.org/fulldisclosure/2020/Dec/26
http://seclists.org/fulldisclosure/2020/Dec/32